FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 18:22:07 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
81da673e-dfe1-11e2-9389-08002798f6ff	apache-xml-security-c -- heap overflow during XPointer evaluation The Apache Software Foundation reports: The attempted fix to address CVE-2013-2154 introduced the possibility of a heap overflow, possibly leading to arbitrary code execution, in the processing of malformed XPointer expressions in the XML Signature Reference processing code. Discovery 2013-06-27 Entry 2013-06-28 apache-xml-security-c < 1.7.2 CVE-2013-2210 http://santuario.apache.org/secadv.data/CVE-2013-2210.txt

VuXML ID

Description

81da673e-dfe1-11e2-9389-08002798f6ff

apache-xml-security-c -- heap overflow during XPointer evaluation

The Apache Software Foundation reports:

The attempted fix to address CVE-2013-2154 introduced the possibility of a heap overflow, possibly leading to arbitrary code execution, in the processing of malformed XPointer expressions in the XML Signature Reference processing code.

Discovery 2013-06-27
Entry 2013-06-28
apache-xml-security-c

< 1.7.2

CVE-2013-2210
http://santuario.apache.org/secadv.data/CVE-2013-2210.txt